Supported Directory integrations

For most companies, Active Directory (AD) or LDAP and play the central role in coordinating identity and access management policies. Directory integration typically serves as a "source of truth" for user identities, and it provides access control to on-premises resources such as networks, file servers, and web applications. A byproduct of the transition to cloud applications is the proliferation of separate user stores; each cloud application typically is rolled out independently and therefore has its own unique database of user credentials.

Okta's cloud-based identity and access management service solves these problems with a single integration point that provides a highly available solution for all cloud and web-based application Active Directory integrations.

For installing and configuring your directory integrations, see these topics:

Base AD attributes — List of the 10 basic attributes that AD requires. All other AD attributes are considered custom attributes.

Active Directory attribute mappings — Table showing how the AD attributes map to Okta attributes. As you are building your Okta and AD user profiles you will need to know how the AD attributes map to Okta attributes.

Set up Attribute Level Mastering(ALM) — ALM delivers finer grain control over how profiles are mastered by letting you specify different profile masters for individual attributes.

Learn about Okta's Security policies. — Okta policies allow control of various elements of security, including end-user passwords, the authentication challenges a user receives, the devices they can use, and the places they use them from.

Other topics:

Disconnect user from Active Directory — You can disconnect users who were imported from Active Directory (AD) so that they become native Okta users, allowing you to edit user fields or prevent updates from being synced from AD.